Do Son 
In late February 2025, Binarly received a report of a suspicious incident within the UEFI ecosystem. A public entry in the SupplyChainAttacks repository pointed to a leak of private Boot Guard keys embedded in firmware for Clevo-manufactured devices. The source of the discovery was a post on the Win-Raid forum, where a user found the private keys exposed within a publicly available BIOS update package.
These suspicions were soon confirmed: investigation revealed that the binary file BootGuardKey.exe contained two private keys, also duplicated in separate PEM files. The extracted key modules matched those found in the Boot Guard Key Manifest and Boot Policy Manifest present in Clevo firmware. This implies that a malicious actor could use the leaked keys to sign a tampered firmware image, which would then pass platform-level integrity checks, effectively bypassing Boot Guard protection.
Binarly identified 15 affected firmware packages spanning 10 unique devices. All utilize BIOS developed by Insyde and are built on Clevo ODM platforms. Among the impacted systems are several Gigabyte G5, G6, and G7 models—including the recently released 2025 G6X 9KG.
| Device Name | ODM | IBV | Firmware Version | Release Date | Latest Version |
|---|---|---|---|---|---|
| XPG Xenia 15G G2303_V1.0.8 | Clevo | Insyde | 6.2.8320.0 | 2023-06-14 | True |
| Gigabyte G5 KE | Clevo | Insyde | FB05 | 2023-03-07 | True |
| Gigabyte G5 KF 2024 | Clevo | Insyde | FD06 | 2024-01-10 | True |
| Gigabyte G5 KF5 2024 | Clevo | Insyde | FD07 | 2024-10-17 | False |
| Gigabyte G5 KF5 2024 | Clevo | Insyde | FD10 | 2024-12-09 | True |
| Gigabyte G5 ME | Clevo | Insyde | FB04 | 2023-06-05 | True/False |
| Gigabyte G5 MF | Clevo | Insyde | FB03 | 2023-04-14 | True |
| Gigabyte G6 KF | Clevo | Insyde | FB06 | 2023-10-23 | True |
| Gigabyte G6X 9KG 2024 | Clevo | Insyde | FD07 | 2024-01-19 | False |
| Gigabyte G6X 9KG 2024 | Clevo | Insyde | FB10 | 2025-02-04 | True |
| Gigabyte G7 KF | Clevo | Insyde | FB10 | 2024-02-16 | True |
| Gigabyte G7 KF | Clevo | Insyde | FB09 | 2023-10-18 | False |
| NoteBook System Firmware 1.07.07TRO1 | Clevo | Insyde | 6.2.8319.7 | 2023-09-05 | True |
| NoteBook System Firmware 1.07.09TRO1 | Clevo | Insyde | 6.2.8319.9 | 2023-11-28 | True |
Notably, the list of affected devices includes both outdated systems and those with current firmware versions—indicating that the compromised keys are still in use across actively supported products, thereby elevating the severity of the threat. Also present are two generically labeled system BIOS packages—NoteBook System Firmware—which are not tied to any major brand, suggesting potential involvement of additional OEM vendors.
It is important to emphasize that this issue is confined exclusively to Clevo-based platforms. In Binarly’s extensive firmware dataset—encompassing over 200,000 firmware packages from various manufacturers—no similar leaks were observed among other vendors. This strongly suggests that the incident stems from a key management failure specific to a single ODM.
Binarly submitted a vulnerability disclosure under identifier BRLY-2025-002 to the CERT Coordination Center (CERT/CC) on February 28. However, the case was closed just days later without detailed explanation. Binarly has announced plans to disclose full details of the incident, along with recurring key management failures, at the upcoming RSA Conference.
